Self-Service Portal
OWN YOUR ACCESS
Last updated
OWN YOUR ACCESS
Last updated
The Self-Service Portal (SSP) enables end users to request access to products, such as Entra ID/Azure AD groups or specific attributes. Approval workflows ensure that access is granted securely, while managers and product owners maintain control over their respective resources.
This feature reduces the workload on IT teams and streamlines access management processes by enabling self-service access with the appropriate approvals.
Users can browse and search for available products, which include:
Entra ID or Active Directory groups
Attributes categorized as "other"
Products already assigned to a user are clearly marked. Access requests can be submitted directly from the product listing.
Future consideration: Implement a time-limited access option (e.g., request access for 14 days with automatic removal afterward).
This section is available to users who act as approvers, such as managers or product owners. Approvers can:
View pending requests
Approve or deny requests
Add optional comments during the approval process
Users can view the status of their past requests, including pending, approved, and denied requests. This section provides transparency and allows users to track their access history.
This tab displays all products currently assigned to the user.
Users can:
View assigned products and related details such as app links and considerations.
Remove products they no longer need directly from this view.
This feature helps users manage their access and ensures unused resources are cleaned up proactively.
Operators can manage products visible in the Self-Service Portal. Available actions include:
Creating, editing, and deleting products
Defining product types:
Entra ID/Active Directory group
Attribute with category "other"
Managing product visibility in the portal
Assigning approval workflows:
Manager approval
Group or attribute owner approval
Manager and owner approval
Manager or owner approval
Auto-approve
Each product can include a set of considerations, which are visible to both the requester and the approver. These considerations provide important context and help set expectations before access is requested or approved.
Common examples of considerations:
License cost
Training required (e.g., GDPR)
Admin rights
Temporary access
Project-specific
Department-specific
High security or MFA required
By displaying this information, requesters are more aware of the implications of their access, and approvers can make more informed decisions.
Operators can view all user access requests, filter by approval status, and search by user. This section provides full oversight and auditing capabilities for managing product access.
Available actions include:
Viewing detailed request information such as product, requester, status, and request date.
Filtering requests by status (pending, approved, denied) or by requester.
Approving or denying requests directly through the interface.
Using the "Bypass Approval" option to immediately approve a request with a single click.
✅ Reduce IT workload by enabling user-driven access requests. ✅ Improve access governance through clearly defined approval workflows. ✅ Increase user satisfaction by providing faster access to required resources. ✅ Empower product owners and managers to maintain control without manual IT intervention. ✅ Ensure transparency with full request tracking and audit history. ✅ Provide users with direct control to manage and remove their own unused access.
The Self-Service Portal brings balance between user autonomy and access governance. By enabling users to manage their own access requests and providing clear approval processes, organizations can streamline access management, reduce operational overhead, and maintain strong security controls.
With the Self-Service Portal, users get the access they need, when they need it, without unnecessary delays or manual processes.
